[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [syndication] Authenticated Access to RSS
In article <87itb4uj65.fsf@universe.yi.org>, burton@openprivacy.org
writes
>Julian Bond <julian_bond@voidstar.com> writes:
>> In article <167171663128.20011215211355@loy-fu.com>, Dion Loy <dion-
>> yhoo@loy-fu.com> writes
>> >This doesn't and shouldn't require RSS-level support in the RSS spec.
>> >This is already done at the HTTP level. It would be relatively
>> >trivial for current RSS readers (if they don't already) to support
>> >HTTP authentication (base64 at the very least, maybe NTLM if they want
>> >to get fancy).
>>
>> The key here is the words "if they don't already". And the answer is "they
>> don't". Generally the libraries people are using, curl, Indy, php, perl, could
>> support normal http authentication, or even something built on SSL. Or the
>> same cookie based authentication used for session management in the main site.
>>
>> But I'm pretty sure nobody does.
>
>If these libraries do not support transparent auth, redirect and SSL, they are
>broken.
>
>The java.net implementation supports HTTP, SSL and auto right now.
Read my lips. "Generally, the libraries people are using, curl, Indy,
php, perl, could support normal http authentication..." The problem is
not the libraries being used, it's the code written on top of them.
--
Julian Bond email: julian_bond@voidstar.com
CV/Resume: http://www.voidstar.com/cv/
WebLog: http://www.voidstar.com/
M: +44 (0)77 5907 2173 T: +44 (0)192 0412 433
ICQ:33679568 tag:So many words, so little time